Cookie Policy
Last updated: May 5, 2026
1. What Are Cookies
Cookies and similar browser storage are small pieces of data stored in your browser. WorklogMate uses them for authentication, session management, and optional analytics only after your consent.
2. Cookies We Set
The following cookies are set by the Service:
| Cookie | Type | Purpose | Expiry |
|---|---|---|---|
| sb-*-auth-token | httpOnly, Secure | App session JWT (Supabase) | Session / 1 week |
| sb-*-auth-token-code-verifier | httpOnly, Secure | PKCE OAuth flow (Supabase) | Session |
| jira_oauth_state | httpOnly, Secure | CSRF protection during Jira OAuth | 10 minutes |
3. Optional Analytics
If you accept analytics, WorklogMate loads Google Analytics to understand aggregate product usage. Analytics is not loaded before consent, and we do not send account data, time entries, Jira issues, or worklog text. If you decline analytics, Google Analytics is not loaded.
4. Managing Cookies
All authentication cookies are set as httpOnly and Secure where possible, meaning they cannot be accessed via JavaScript. You can clear cookies and site data at any time through your browser settings. Clearing site data removes your analytics preference and may sign you out of the Service.
5. Contact
For questions about our cookie usage, please open an issue on our GitHub repository or email us at info@worklogmate.com.